A Software System for Risk Management of Information Systems*

The procedure for risk analysis is one of the important procedure during the development of the information system. However, this procedure is often not performed properly. To reduce the level of failures in the design of information systems, experts and effective tools for risk management are required. The article is devoted to the description of the developed software system of risk management. The goal of the system is to increase the reliability and fault tolerance of information systems, by evaluating the risks of software products and applying a strategy to mitigate these risks.

[1]  Yacov Y. Haimes,et al.  Risk associated with software development: a holistic framework for assessment and management , 1993, IEEE Trans. Syst. Man Cybern..

[2]  B. Boehm Software risk management: principles and practices , 1991, IEEE Software.

[3]  Irem Y. Tumer,et al.  The Risk in Early Design (RED) Method: Likelihood and Consequence Formulations , 2006, DAC 2006.

[4]  Irem Y. Tumer,et al.  Risk Assessment in Early Software Design Based on the Software Function-Failure Design Method , 2007, 31st Annual International Computer Software and Applications Conference (COMPSAC 2007).

[5]  Davide Aloini,et al.  Risk assessment in ERP projects , 2012, Inf. Syst..

[6]  Paul L. Bannerman,et al.  Risk and risk management in software projects: A reassessment , 2008, J. Syst. Softw..

[7]  Steve McConnell,et al.  Software Project Survival Guide , 1997 .

[8]  Roozbeh Kangari,et al.  Construction risk assessment by linguistics , 1989 .

[9]  Noraini Che Pa,et al.  A review on risk mitigation of IT governance , 2015 .

[10]  Marjan Krisper,et al.  Diagnosing organizational risks in software projects: Stakeholder resistance , 2015 .

[11]  Francisco J. García-Peñalvo,et al.  An association rule mining method for estimating the impact of project management policies on software quality, development time and effort , 2008, Expert Syst. Appl..

[12]  Arnold Vedlitz,et al.  Policy Learning for Flood Mitigation: A Longitudinal Assessment of the Community Rating System in Florida , 2009, Risk analysis : an official publication of the Society for Risk Analysis.

[13]  Irem Y. Tumer,et al.  Prescribing and Implementing the Risk in Early Design (RED) Method , 2006 .

[14]  Cassandra C. Elrod,et al.  Identifying Risk at the Conceptual Product Design Phase: A Web-Based Software Solution and Its Evaluation , 2012 .

[15]  Hiromitsu Kumamoto,et al.  Probabilistic Risk Assessment , 1996 .

[16]  Wen-Ming Han,et al.  Discriminating risky software project using neural networks , 2015, Comput. Stand. Interfaces.

[17]  Prabir Bhattacharya,et al.  A fuzzy-logic-based approach to project selection , 2000, IEEE Trans. Engineering Management.

[18]  Y. Amihud,et al.  Risk Reduction as a Managerial Motive for Conglomerate Mergers , 1981 .

[19]  Katie Grantham,et al.  Failure Prevention Through the Cataloging of Successful Risk Mitigation Strategies , 2013, Journal of Failure Analysis and Prevention.

[20]  J. Tamilselvi,et al.  FUZZY MULTI-CRITERIA RANDOM SEED AND CUTOFF POINT APPROACH FOR CREDIT RISK ASSESSMENT , 2018 .

[21]  Behrouz Afshar-Nadjafi,et al.  A genetic algorithm for mode identity and the resource constrained project scheduling problem , 2012 .

[22]  Yacov Y. Haimes Toward a Holistic Approach to Risk Assessment and Management , 1989 .

[23]  Waldemar Karwowski,et al.  Applications of Approximate Reasoning in Risk Analysis , 1986 .

[24]  Irem Y. Tumer,et al.  Implementation Procedures for the Risk in Early Design (RED) Method , 2008 .

[25]  Seilkhan Boranbayev,et al.  Methods of Ensuring the Reliability and Fault Tolerance of Information Systems , 2018, ITNG 2018.

[26]  Huan-Ming Chuang,et al.  A Study on Applying Mind Mapping to Build a Knowledge Map of the Project Risk Management of Research and Development , 2009, 2009 Fourth International Conference on Innovative Computing, Information and Control (ICICIC).

[27]  T.E. Bell Managing Murphy's law: engineering a minimum-risk system , 1989, IEEE Spectrum.

[28]  Dilip Kumar Yadav,et al.  A Probabilistic Software Risk Assessment and Estimation Model for Software Projects , 2015 .

[29]  Ping Guo,et al.  Software Risk Prediction Based on the Hybrid Algorithm of Genetic Algorithm and Decision Tree , 2007, ICIC.

[30]  Júlio Menezes,et al.  Proposal of Risk Management Metrics for Multiple Project Software Development , 2015 .

[31]  Donald E. Neumann An Enhanced Neural Network Technique for Software Risk Analysis , 2002, IEEE Trans. Software Eng..

[32]  Robert Stone,et al.  The risk in early design method , 2009 .

[33]  Kash Barker,et al.  Quantifying the risk of project delays with a genetic algorithm , 2015 .

[34]  Teh Noranis Mohd Aris,et al.  A risk mitigation decision framework for an information technology organizations , 2017 .

[35]  Rene Saint-Germain,et al.  Information Security Management Best Practice Based on ISO/IEC 17799 , 2005 .

[36]  Robert N. Charette,et al.  Applications Strategies for Risk Analysis , 1990 .

[37]  Eldon Y. Li,et al.  Do organizational citizenship behaviors lead to information system success?: Testing the mediation effects of integration climate and project management , 2008, Inf. Manag..

[38]  Jairo R. Montoya-Torres,et al.  Project scheduling with limited resources using a genetic algorithm , 2010 .

[39]  Yacov Y. Haimes,et al.  Total Risk Management , 1991 .